[SERVER-64094] Block encryption of bindata subtype 6 Created: 01/Mar/22 Updated: 05/Apr/22 Resolved: 05/Apr/22 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | None |
| Affects Version/s: | None |
| Fix Version/s: | None |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Mark Benvenuto | Assignee: | Sergey Galtsev (Inactive) |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Sprint: | Security 2022-03-21, Security 2022-04-04, Security 2022-04-18 |
| Participants: |
| Description |
|
While there is nothing wrong about encrypting bindata 6, we do not want to support seamless decryption of data if users were to encrypt data with either the same (i.e. FLE2 and FLE 2) or different (FLE 1 and FLE2) encryption schemes. We should add a block when encrypting encryption placeholders. It should apply to either FLE 1 or FLE 2. |